Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tftp-server vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-29930
An issue was found in Genesys CIC Polycom phone provisioning TFTP Server all version allows a remote malicious user to execute arbitrary code via the login crednetials to the TFTP server configuration page.
Genesys Tftp Server
1 Github repository
NA
CVE-2006-1952
Directory traversal vulnerability in WinAgents TFTP Server for Windows 3.1 and previous versions allows remote malicious users to read arbitrary files via "..." (triple dot) sequences in a GET request.
Winagents Tftp Server
NA
CVE-2010-1174
Cisco TFTP Server 1.1 allows remote malicious users to cause a denial of service (daemon crash) via a crafted (1) read (aka RRQ) or (2) write (aka WRQ) request, or other TFTP packet. NOTE: some of these details are obtained from third party information.
Cisco Tftp Server 1.1
1 EDB exploit
NA
CVE-2007-1645
Buffer overflow in FutureSoft TFTP Server 2000 on Microsoft Windows 2000 SP4 allows remote malicious users to execute arbitrary code via a long request on UDP port 69. NOTE: this issue might overlap CVE-2006-4781 or CVE-2005-1812.
Futuresoft Tftp Server 2000
1 EDB exploit
NA
CVE-2002-2237
tftp32 TFTP server 2.21 and previous versions allows remote malicious users to cause a denial of service via a GET request with a DOS device name such as com1 or aux.
Tftp Tftp Server 2.21
NA
CVE-2010-2310
SolarWinds TFTP Server 10.4.0.13 allows remote malicious users to cause a denial of service (crash) via a long write request.
Solarwinds Tftp Server 10.4.0.13
1 EDB exploit
NA
CVE-2001-0783
Cisco TFTP server 1.1 allows remote malicious users to read arbitrary files via a ..(dot dot) attack in the GET command.
Cisco Tftp Server 1.1
NA
CVE-2011-4722
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote malicious users to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
Ipswitch Tftp Server 1.0.0.24
1 EDB exploit
NA
CVE-2006-4948
Stack-based buffer overflow in tftpd.exe in ProSysInfo TFTP Server TFTPDWIN 0.4.2 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service via a long file name. NOTE: the provenance of this information is unknown; the details are ...
Prosysinfo Tftp Server Tftpdwin
3 EDB exploits
NA
CVE-2010-2115
SolarWinds TFTP Server 10.4.0.10 allows remote malicious users to cause a denial of service (no new connections) via a crafted read request.
Solarwinds Tftp Server 10.4.0.10
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »